隐藏我的JavaScript [英] Hiding my javascript
问题描述
我开发了一个javascript应用程序,我的客户只需在其中一个网页中插入以下内容即可使用:
< script>
document.write(''< iframe src =" http://www.dynamicwebsitesystems.com/PGSampleTable.asp">< / iframe>'')
< /脚本>
任何查看包含上述内容的页面的人都只会看到上面的行,而不是所有的javascript源代码。虽然可能只是粘贴 http://www.dynamicwebsitesystems.com/ PGSampleTable.asp 进入他们的浏览器然后他们将看到javascript。
我的PGSampleTable.asp是否有某种方式可以知道它已从iframe外部调用那么只是不提供javascript?
还有其他方法可以隐藏你的javascript吗? (以上只是一个原型,它最终将成为印刷行业的完整成本系统 - 我不希望任何其他人能够窃取它!)
I have developed a javascript application that can be used by my clients just by inserting the following in one of their web pages:
<script>
document.write(''<iframe src="http://www.dynamicwebsitesystems.com/PGSampleTable.asp"></iframe>'')
</script>
Anyone looking at the page containing the above will only see the the above lines, not all the javascript source. Someone with a little more savy though could just paste http://www.dynamicwebsitesystems.com/PGSampleTable.asp into their browser and then they will see the javascript.
Is there some way that my PGSampleTable.asp could know it has been called from outside the iframe and then just not serve the javascript?
Any other way to hide your javascript? (The above is only a prototype, it will eventually be a full costing system for the printing industry - I don''t want anyone else to be able to steal it!)
推荐答案
" Simon Wigzell" < SI ********** @ shaw.ca>在消息新闻中写道:cfFXe.524275
"Simon Wigzell" <si**********@shaw.ca> wrote in message news:cfFXe.524275
s54.368146@pd7tw2no ...
我开发了一个javascript应用程序,我的客户可以使用它在其中一个网页中插入以下内容:
< script>
document.write(''< iframe src =" http:/ /www.dynamicwebsitesystems.com/PGSampleTable.asp"></iframe>'')
< / script>
任何人看着包含上述内容的页面只会看到上面的行,而不是所有的javascript源代码。虽然可能只是粘贴 http://www.dynamicwebsitesystems.com/ PGSampleTable.asp 进入他们的浏览器然后他们将看到javascript。
我的PGSampleTable.asp是否有某种方式可以知道它已从iframe外部调用那么只是不提供javascript?
传递一个参数???
s54.368146@pd7tw2no...
I have developed a javascript application that can be used by my clients just by inserting the following in one of their web pages:
<script>
document.write(''<iframe src="http://www.dynamicwebsitesystems.com/PGSampleTable.asp"></iframe>'')
</script>
Anyone looking at the page containing the above will only see the the above lines, not all the javascript source. Someone with a little more savy though could just paste http://www.dynamicwebsitesystems.com/PGSampleTable.asp into their browser and then they will see the javascript.
Is there some way that my PGSampleTable.asp could know it has been called from outside the iframe and then just not serve the javascript?
passing a parameter ???
Simon Wigzell在9/19上说了以下内容2005年下午4:32:
Simon Wigzell said the following on 9/19/2005 4:32 PM:
我开发了一个javascript应用程序,可供我的客户使用
只需将以下内容插入其中一个网页:
< script>
document.write(''< iframe
src =" http://www.dynamicwebsitesystems.com/PGSampleTable.asp">< / iframe> ;'')
< / script>
如果JS被禁用或不存在?然后应用程序坏了。
任何查看包含上述内容的页面的人都只会看到上面的行,而不是所有的javascript源代码。虽然可能只是粘贴了一点
savy的人
http: //www.dynamicwebsitesystems.com/PGSampleTable.asp 进入他们的浏览器然后他们将看到javascript。
是的,这就是网络的运作方式。
我的PGSampleTable.asp是否有某种方式可以知道它是从外面调用的iframe然后只是不提供javascript?
No.
隐藏你的javascript的其他任何方式?
从硬盘驱动器中删除它,从服务器中删除它,然后它就不能看到
了。如果它在网站上,可以看到。
(上面只是一个原型,它最终将是一个完整的成本计算系统,适用于印刷行业 - 我不希望其他任何人能够偷走它!)
I have developed a javascript application that can be used by my clients
just by inserting the following in one of their web pages:
<script>
document.write(''<iframe
src="http://www.dynamicwebsitesystems.com/PGSampleTable.asp"></iframe>'')
</script>
And if JS is disabled or not present? Then the app is broken.
Anyone looking at the page containing the above will only see the the
above lines, not all the javascript source. Someone with a little more
savy though could just paste
http://www.dynamicwebsitesystems.com/PGSampleTable.asp into their
browser and then they will see the javascript.
Yep, thats how the web works.
Is there some way that my PGSampleTable.asp could know it has been
called from outside the iframe and then just not serve the javascript?
No.
Any other way to hide your javascript?
Delete it from your hard drive, delete it from your servers, then it
can''t be seen. If it''s on a website, it can be seen.
(The above is only a prototype, it will eventually be a full costing
system for the printing industry - I don''t want anyone else to be able
to steal it!)
然后不要在网上部署它。并且不要成为那些试图告诉你他们销售的商业产品可以做你想要的商品的人。不可能。 Ira Baxter是第一个想到
的名字。
但是,我甚至不需要独立加载它,我只需要知道
当页面打开时如何从我的缓存中读取源代码,你可以
不要停止它。
如果有人设法告诉你混淆将帮助您,在测试页面上尝试混淆,在IE中打开它,然后将其粘贴到工具栏中:
javascript :''< code>< ol>< li>''+(document.documentElem ent || document.body).outerHTML.replace(/& / g,"& amp;" ).replace(/< /克,"&安培; LT;")代替(/%20%20 /克,"。&安培; NBSP;%20 QUOT。)代替(/(\\\
\ r?| \ r)/ g,"< li>")+''< \ / ol>< \ / code>'';
然后按GO并查看安全的方式。你的代码是。
-
兰迪
comp.lang.javascript常见问题 - http://jibbering.com/faq &新闻组周刊
Then don''t deploy it on the web. And do not fall prey to the likes of
people who will attempt to tell you that the commercial product they
sell can do what you want, it can''t. Ira Baxter is the first name that
comes to mind.
But, I do not even need to load it independently, I only need to know
how to read the source from my cache while the pages is open and you can
not stop that.
If someone manages to tell you that "obfuscation" will help you, try the
obfuscation on a test page, open it in IE, then paste this into the toolbar:
javascript:''<code><ol><li>''+(document.documentElem ent||document.body).outerHTML.replace(/&/g,"&").replace(/</g,"<").replace(/%20%20/g," %20").replace(/(\n\r?|\r)/g,"<li>")+''<\/ol><\/code>'';
And press GO and find out how "safe" your code is.
--
Randy
comp.lang.javascript FAQ - http://jibbering.com/faq & newsgroup weekly
这篇关于隐藏我的JavaScript的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
